Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

PlatonWebh...er.bat

windows7-x64

1

PlatonWebh...er.bat

windows10-2004-x64

1

Resubmissions

21/09/2024, 20:46

240921-zkp6xsshqp 6

21/09/2024, 20:44

240921-zjgs6ashkn 3

21/09/2024, 20:28

240921-y88gqs1hra 9

21/09/2024, 20:27

240921-y8mv2asbnq 1

Analysis

  • max time kernel
    14s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 20:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PlatonWebhookSpammer.bat

  • Size

    3KB

  • MD5

    8bf81aa131998cd469d2c2da49367dcb

  • SHA1

    214f0df3b2e5f6728cb3724eec9ce80d0738a70d

  • SHA256

    5449706ffb9ececf4c10121f513fe62797fad35274d9b1a84eb4e3ab861af94a

  • SHA512

    bac8bad76778d33915b6acdd9771f297117e4e65e0802e483f65e3bac56e5fee48aa63922aa55a361b836a31ba366405c2d16f0b65f87e4c6e2fea5429bc38ad

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\PlatonWebhookSpammer.bat"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2496
    • C:\Windows\system32\chcp.com
      chcp 65001
      2⤵
        PID:2064

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads